pp-wikipedia

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and ingests public, user-generated Wikipedia content via the wikipedia-pp-cli (see SKILL.md "Wikipedia REST API" and the "page get-html"/"page get-summary"/"page get-random" commands) and the agent is expected to read/parse those results in Agent Mode, so untrusted third-party content could influence its decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill requires fetching and installing remote code that will be executed and is a required dependency (e.g., via npx @mvanhorn/printing-press and go install github.com/mvanhorn/printing-press-library/library/media-and-entertainment/wikipedia/cmd/wikipedia-pp-cli@latest and github.com/mvanhorn/printing-press-library/library/other/wikipedia-pp-cli/cmd/wikipedia-pp-mcp@latest), so these external package sources are runtime dependencies that execute remote code.